iViZ: Cloud-based Web Application Security Testing
Date: Wednesday , November 02, 2011
The threats landscape for Information security is rapidly evolving and with recent high profile attacks on major corporations across the world, organizations are becoming increasingly pro-active in securing their IT infrastructure. Helping organizations in this regard is iViZ Security, which provides the industry’s first cloud-based penetration testing service for web applications.
Bikash Barai and Nilanjan De co-founded iViZ in 2005. iViZ got funded by IDG Ventures in 2008 and have been growing by over 100 percent year-on-year thereafter. The company has offices in U.S., Europe and India and also works with over 30 partners across the globe.
The predominant approaches to handling application security testing are through using automated scanners or hiring external security consultants. The issues with these approaches are that automated scanners lack in quality (false positives, cannot do business logic testing), whereas consultants are expensive and not scalable. iViZ solves these problems by leveraging its patent pending “hybrid approach” that integrates automation with manual testing by security experts. Security tests can be scheduled and managed through iViZ’s online portal which also includes analytics, trends and flexible reporting capabilities.
iViZ Security’s research team is consistently credited with zero-day vulnerability discoveries in the products of several global security solutions, from Microsoft, Symantec, Intel, HP and McAfee The company and its innovative concept and business model have not gone unnoticed in the industry. In 2009 it was selected as one of the top four emerging product companies at NASSCOM Product Conclave. Adding to its sheen is a clientele of over 300 companies which include CNBC, CNN-IBN, ING, Fiat, Vodafone, Thomson Digital, MountainGear.com, Yatra.com, Flipkart.com and Airtel.